NO.1 Your system uses a multi-master, multi-region DynamoDB configuration spanning two regionsto achievehigh availablity. For the first time since launching your system, one of the AWS Regions in which youoperate over went down for 3 hours, and the failover worked correctly. However, after recovery,yourusers are experiencing strange bugs, in which users on different sides of the globe see different data.What is a likely design issue that was not accounted for when launching?A. The system does not have Lambda Functor Repair Automatons, to perform table scans and chackforcorrupted partition blocks inside the Table in the recovered Region.B. The system did not use DynamoDB Consistent Read requests, so the requests in different areas arenot utilizing consensus across Regions at runtime.C. The system did not include repair logic and request replay buffering logic for post-failure, tore-synchronize data to the Region that was unavailable for a number of hours.D. The system did not implement DynamoDB Table Defragmentation for restoring partitionperformance inthe Region that experienced an outage, so data is served stale.Answer: C

AWS-DevOps コンポーネントAWS-DevOps 過去問Explanation:When using multi-region DynamoDB systems, it is of paramount importance to make sure that allrequests made to one Region are replicated to the other. Under normal operation, the system inquestionwould correctly perform write replays into the other Region. If a whole Region went down, thesystemwould be unable to perform these writes for the period of downtime. Without buffering writerequestssomehow, there would be no way for the system to replay dropped cross-region writes, and therequestswould be serviced differently depending on the Region from which they were served after recovery.Reference:http://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Streams.CrossRegionRepl.html

NO.2 You were just hired as a DevOps Engineer for a startup. Your startup uses AWS for 100% of theirinfrastructure. They currently have no automation at all for deployment, and they have had manyfailureswhile trying to deploy to production. The company has told you deployment process risk mitigation isthemost important thing now, and you have a lot of budget for tools and AWS resources.Their stack:2 -tier APIData stored in DynamoDB or S3, depending on typeCompute layer is EC2 in Auto Scaling GroupsThey use Route53 for DNS pointing to an ELBAn ELB balances load across the EC2 instancesThe scaling group properly varies between 4 and 12 EC2 servers.Which of the following approaches, given this company's stack and their priorities, best meets thecompany's needs?A. Model the stack in AWS OpsWorks as a single Stack, with 1 compute layer and its associated ELB.Use Chef and App Deployments to automate Rolling Deployment.B. Model the stack in AWS Elastic Beanstalk as a single Application with multiple Environments. UseElastic Beanstalk's Rolling Deploy option to progressively roll out application code changes whenpromoting across environments.C. Model the stack in 3 CloudFormation templates: Data layer, compute layer, and networking layer.Writestack deployment and integration testing automation following Blue-Green methodologies.D. Model the stack in 1 CloudFormation template, to ensure consistency and dependency graphresolution. Write deployment and integration testing automation following Rolling Deploymentmethodologies.Answer: C

AWS-DevOps 短期 AWS-DevOps 関連 Explanation:AWS recommends Blue-Green for zero-downtime deploys. Since you use DynamoDB, and neitherAWSOpsWorks nor AWS Elastic Beanstalk directly supports DynamoDB, the option selectingCloudFormationand Blue-Green is correct.You use various strategies to migrate the traffic from your current application stack (blue) to a newversionof the application (green). This is a popular technique for deploying applications with zero downtime.Thedeployment services like AWS Elastic Beanstalk, AWS CloudFormation, or AWS OpsWorks areparticularly useful as they provide a simple way to clone your running application stack. You can setup anew version of your application (green) by simply cloning current version of the application (blue).Reference: https://d0.awsstatic.com/whitepapers/overview-of-deployment-options-on-aws.pdf

NO.3 What is web identity federation?A. Use of an identity provider like Google or Facebook to become an AWS IAM User.B. Use of AWSSTS Tokens to log in as a Google or Facebook user.C. Use of AWS IAM User tokens to log in as a Google or Facebook user.D. Use of an identity provider like Google or Facebook to exchange for temporary AWS securitycredentials.Answer: D